EUVD-2022-49388

Malicious code in bioql PyPI...

D-Link DIR-823X Command Injection Vulnerability (CNVD-2025-23369)

The D-Link DIR-823X is a wireless router from China's AUO D-Link. The D-Link DIR-823X suffers from a command injection vulnerability that originates from the misuse of the parameter macList in the file /goform/setwifiblacklists, which can be exploited by an attacker to cause remote command...

CVE-2025-11098

A vulnerability was found in D-Link DIR-823X 250416. The affected element is an unknown function of the file /goform/setwifiblacklists. The manipulation of the argument macList results in command injection. The attack may be performed from remote. The exploit has been made public and could be use...

CVE-2025-11098

CVE-2025-11098 affects D-Link DIR-823X firmware 250416. The vulnerability resides in an unknown function in /goform/set_wifi_blacklists where manipulating the macList argument enables remote command injection. Impact is high for confidentiality, integrity, and availability per NVD/CNA notes; expl...

PT-2025-39760

Name of the Vulnerable Software and Affected Versions D-Link DIR-823X version 250416 Description A flaw exists in D-Link DIR-823X firmware version 250416 that allows for remote command injection. The issue is located in an unknown function within the /goform/set wifi blacklists file. Manipulation...

The vulnerability of the formWifiMacFilterSet() function (/goform/setWrlFilterList) in the Tenda O3 wireless access point software allows a intruder to execute arbitrary code or cause a service failure.

The vulnerability of the formWifiMacFilterSet function /goform/setWrlFilterList in the Tenda O3 wireless access point software lies in the issue where the operation exceeds the buffer limit in memory when processing the macList parameter. Exploiting this vulnerability could allow a malicious acto...

Tenda O3V2 /goform/setWrlFilterList File Buffer Overflow Vulnerability

Tenda O3V2 is an outdoor wireless bridge from Tenda, China. The Tenda O3V2 suffers from a buffer overflow vulnerability, which originates from the /goform/setWrlFilterList file parameter macList fails to properly validate the length of the input data, which can be exploited by an attacker to...

CVE-2025-7423

A vulnerability classified as critical was found in Tenda O3V2 1.0.0.123880. Affected by this vulnerability is the function formWifiMacFilterSet of the file /goform/setWrlFilterList of the component httpd. The manipulation of the argument macList leads to stack-based buffer overflow. The attack c...

Tenda O3V2 安全漏洞

Tenda O3V2 is an outdoor wireless bridge from Tenda, China. The Tenda O3V2 suffers from a buffer overflow vulnerability, which originates from the /goform/setWrlFilterList file parameter macList fails to properly validate the length of the input data, which can be exploited by an attacker to...

CVE-2022-46586

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the qcawifi.wifi%dvap%d.maclist parameter in the kickbanwifimacallow sub415B00 function...

CVE-2025-1103

A vulnerability, which was classified as problematic, was found in D-Link DIR-823X 240126/240802. This affects the function setwifiblacklists of the file /goform/setwifiblacklists of the component HTTP POST Request Handler. The manipulation of the argument macList leads to null pointer dereferenc...

PT-2025-5980 · D Link · Dir-823

Name of the Vulnerable Software and Affected Versions: D-Link DIR-823X versions 240126 through 240802 Description: A problematic issue was found in the HTTP POST Request Handler component, specifically affecting the set wifi blacklists function of the /goform/set wifi blacklists file. The...

PT-2024-34556 · Trendnet · Trendnet Tew-652Brp +1

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW-651BR version 2.04B1 TRENDnet TEW-652BRP version 3.04b01 TRENDnet TEW-652BRU version 1.00b12 Description: The issue is related to a Store Cross-site scripting XSS vulnerability. This vulnerability can be exploited via the macList...

CVE-2022-46586

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the qcawifi.wifi%dvap%d.maclist parameter in the kickbanwifimacallow sub415B00 function...

TRENDnet TEW-755AP 缓冲区错误漏洞

The TRENDnet TEW-755AP is a router from TRENDnet. The TRENDnet TEW-755AP suffers from a stack overflow vulnerability that originates from the lack of size checking of input data in the qcawifi.wifi%dvap%d.maclist parameter in the kickbanwifimacdeny sub415D7C function, which can be exploited by an...

CVE-2022-46584

Affected product: TRENDnet TEW755AP (firmware 1.13B01). Vulnerability: stack overflow in the qcawifi.wifi%d_vap%d.maclist parameter within the kick_ban_wifi_mac_deny function (sub_415D7C). Impact: allows potential arbitrary code execution or control to be gained via network exposure (high impact ...

PT-2022-27912 · Trendnet · Trendnet Tew755Ap

Name of the Vulnerable Software and Affected Versions: TRENDnet TEW755AP version 1.13B01 Description: A stack overflow issue was discovered, related to the qcawifi.wifi%d vap%d.maclist parameter in the kick ban wifi mac deny sub 415D7C function. Recommendations: For TRENDnet TEW755AP version...

CVE-2022-46586

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the qcawifi.wifi%dvap%d.maclist parameter in the kickbanwifimacallow sub415B00 function...

The vulnerability of the implementation of the SetWLanACLSettings() function in D-Link DIR-823-Pro wireless router software allows a hacker to execute arbitrary commands.

The vulnerability of the implementation of the SetWLanACLSettings function in D-Link DIR-823-Pro wireless router microprogramming software is related to insufficient cleaning of input data during the processing of the parameter wl0.0maclist. Exploiting this vulnerability allows a remote attacker ...

CVE-2021-46456

D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetWLanACLSettings. This vulnerability allows attackers to execute arbitrary commands via the wl0.0maclist parameter...